Description

MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.

Remediation

References

CVE-2013-1817

Related Vulnerabilities

WordPress Plugin WordPress Poll Multiple Unspecified Vulnerabilities (35.0)

Apache Traffic Server Improper Authentication Vulnerability (CVE-2021-44759)

WordPress Plugin Validated Cross-Site Scripting (1.0.2)

WordPress Plugin WP-Members Membership Cross-Site Request Forgery (3.2.7)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4288)

Severity

High

Classification

CVE-2013-1817 CWE-200 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities